Security Operations Engineer

Remote - USA

Dragos, Inc. logo
Dragos, Inc.
Apply now Apply later

Posted 1 week ago

Our mission at Dragos is to protect the world’s most critical infrastructure from adversaries who wish to do it harm. We help defend industrial organizations that provide us with the tenets of modern civilization: running water, functioning electricity, and safe industrial working environments.
The IT Security team is responsible for securing Dragos infrastructure and data. IT security is vital to ensuring a strategic Information Security program that adapts to ever-changing environments, risks, and vulnerabilities.
The IT Security team is looking for an experienced Security Operations Engineer to expand our internal information security team. This role will focus on providing incident analysis and triage; improving incident response capabilities by tasks such as developing SIEM correlation rules, adding log sources, and leading purple team exercises to validate detections; documenting playbooks to formalize support through training junior staff; and supporting initiatives to mature the information security program.

Responsibilities

  • Participate in the design of Security Operations Center (SOC) capabilities, processes, and maturity
  • Seek and implement detective controls across all enterprise platforms
  • Tune and build detection logic and correlation rules in SIEM solution
  • Respond to system anomaly events, perform triage to validate, and work with teams and third-party vendors to resolve
  • Participate in security incident investigations and prepare incident response reports
  • Track, monitor, and report metrics to gauge the effectiveness of SOC functions
  • Fuse information across all security domains to ensure holistic situational awareness
  • Support policy and standards development
  • Develop and participate in incident response exercises
  • Monitor logs and other data sources to hunt for indicators of compromise across the organization
  • Work closely with engineers and developers to improve Dragos’ security posture
  • Provide technical consultation and advanced expert advice to reduce risk

Requirements

  • 5+ years of experience
  • Experience with a variety of information security toolsets
  • Network, server, and application log analysis and correlation
  • Practical knowledge and experience working in cloud environments and IAM solutions (AWS, GCP, etc.)
  • Knowledge of Agile and secure SDLC
  • Ability to communicate security risks and recommendations effectively with technical and non-technical audiences focusing on actionable and measurable improvements
  • BS in Computer Science or equivalent experience
  • Ability to work in a fast-paced team-oriented environment where collaboration is embraced

Nice to have/Preferred

  • One or more certifications (CISSP, OSCP, GPEN, OSCE, GCIA)
  • Software development or scripting experiences (Python, Shell, Java, JSON, Scrum, Jira, etc.)
  • Contributions to the security community (public research, pen test, bug bounty, etc.)
  • Familiarity with network and web application protocols (HTTP, HTTPS, TCP/IP, SAML 2.0, OAuth 2.0, Rest APIs, etc.)
Our mission at Dragos is to protect the world’s most critical infrastructure from adversaries who wish to do it harm. We help defend industrial organizations that provide us with the tenets of modern civilization: running water, functioning electricity, and safe industrial working environments.
We are practitioners who have lived through and solved real security challenges. Our team members have responded to incidents including the Ukraine 2015 power grid attack, analyzed the CRASHOVERRIDE malware responsible for the Ukraine 2016 electric grid attack, analyzed the TRISIS malware responsible for the petrochemical facility attack in 2017, built and led the National Security Agency mission to identify nation-states breaking into ICS, and performed assessments on hundreds of assets around the world.
We offer competitive salaries, equity, and a comprehensive benefits package including medical, dental, vision, disability, 401K, and life insurance.
Dragos is proud to be an equal opportunity workplace dedicated to pursuing and hiring a diverse workforce. Come join us!
Job tags: APIs AWS CISSP IT security Java Jira Python Research Scrum Security Training
Job region(s): North America
Job stats:  0  0  0
  • Share this job via
  • or